dependabot/fetch-metadata
2
0
Fork 0
mirror of https://github.com/dependabot/fetch-metadata.git synced 2026-03-13 18:17:13 -04:00
Code Issues Packages Projects Releases Wiki Activity
410 Commits 8 Branches 28 Tags
7dd6c7b10bead3d059d7f7b4c0450bfcfec76e87
Commit Graph

410 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
7dd6c7b10b Bump @typescript-eslint/parser from 5.45.0 to 5.48.2 
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 5.45.0 to 5.48.2.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.48.2/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-16 21:20:09 +00:00
Barry Gordon
c383f6f350 Merge pull request #303 from dependabot/dependabot/npm_and_yarn/eslint-8.32.0 
Bump eslint from 8.23.1 to 8.32.0
 2023-01-16 21:08:32 +00:00
dependabot[bot]
742a52bd6d Bump eslint from 8.23.1 to 8.32.0 
Bumps [eslint](https://github.com/eslint/eslint) from 8.23.1 to 8.32.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/compare/v8.23.1...v8.32.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-16 21:07:19 +00:00
Barry Gordon
e526b9f861 Merge pull request #297 from dependabot/dependabot/npm_and_yarn/json5-1.0.2 
Bump json5 from 1.0.1 to 1.0.2
 2023-01-16 21:03:00 +00:00
dependabot[bot]
316add4d2a Bump json5 from 1.0.1 to 1.0.2 
Bumps [json5](https://github.com/json5/json5) from 1.0.1 to 1.0.2.
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](https://github.com/json5/json5/compare/v1.0.1...v1.0.2)

---
updated-dependencies:
- dependency-name: json5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-07 07:50:07 +00:00
Barry Gordon
070aec98fe Merge pull request #292 from dependabot/dependabot/npm_and_yarn/yaml-2.2.1 
Bump yaml from 2.1.3 to 2.2.1
 2023-01-02 19:17:15 +00:00
Jeff Widman
a00355d0b5 run npm ci && npm run build 2023-01-02 19:16:14 +00:00
dependabot[bot]
1fb40167bd Bump yaml from 2.1.3 to 2.2.1 
Bumps [yaml](https://github.com/eemeli/yaml) from 2.1.3 to 2.2.1.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](https://github.com/eemeli/yaml/compare/v2.1.3...v2.2.1)

---
updated-dependencies:
- dependency-name: yaml
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-02 05:37:20 +00:00
Barry Gordon
6ebbfd296f Merge pull request #295 from dependabot/dependabot/npm_and_yarn/typescript-4.9.4 
Bump typescript from 4.8.3 to 4.9.4
 2023-01-02 05:36:37 +00:00
dependabot[bot]
b91350d2c9 Bump typescript from 4.8.3 to 4.9.4 
Bumps [typescript](https://github.com/Microsoft/TypeScript) from 4.8.3 to 4.9.4.
- [Release notes](https://github.com/Microsoft/TypeScript/releases)
- [Commits](https://github.com/Microsoft/TypeScript/compare/v4.8.3...v4.9.4)

---
updated-dependencies:
- dependency-name: typescript
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-02 05:35:50 +00:00
Barry Gordon
6a872a3c7c Merge pull request #293 from dependabot/dependabot/npm_and_yarn/dotenv-16.0.3 
Bump dotenv from 16.0.2 to 16.0.3
 2023-01-02 05:34:59 +00:00
dependabot[bot]
665b42ad67 Bump dotenv from 16.0.2 to 16.0.3 
Bumps [dotenv](https://github.com/motdotla/dotenv) from 16.0.2 to 16.0.3.
- [Release notes](https://github.com/motdotla/dotenv/releases)
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](https://github.com/motdotla/dotenv/compare/v16.0.2...v16.0.3)

---
updated-dependencies:
- dependency-name: dotenv
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-02 05:34:05 +00:00
Barry Gordon
553ce94ec9 Merge pull request #294 from dependabot/dependabot/npm_and_yarn/vercel/ncc-0.36.0 
Bump @vercel/ncc from 0.34.0 to 0.36.0
 2023-01-02 05:33:15 +00:00
dependabot[bot]
ffeb069566 Bump @vercel/ncc from 0.34.0 to 0.36.0 
Bumps [@vercel/ncc](https://github.com/vercel/ncc) from 0.34.0 to 0.36.0.
- [Release notes](https://github.com/vercel/ncc/releases)
- [Commits](https://github.com/vercel/ncc/compare/0.34.0...0.36.0)

---
updated-dependencies:
- dependency-name: "@vercel/ncc"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-02 05:32:32 +00:00
Barry Gordon
40c4fa2795 Merge pull request #296 from dependabot/dependabot/npm_and_yarn/types/node-18.11.18 
Bump @types/node from 18.11.10 to 18.11.18
 2023-01-02 05:31:47 +00:00
dependabot[bot]
476def598a Bump @types/node from 18.11.10 to 18.11.18 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.11.10 to 18.11.18.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-01-01 12:02:27 +00:00
Barry Gordon
3b06d7be98 Merge pull request #288 from dependabot/dependabot/npm_and_yarn/yaml-2.1.3 
Bump yaml from 2.1.1 to 2.1.3
 2022-12-05 06:40:03 +00:00
Jeff Widman
aa1a97eee8 run npm ci to regenerate dist/ folder 2022-12-05 06:38:23 +00:00
dependabot[bot]
73290048cf Bump yaml from 2.1.1 to 2.1.3 
Bumps [yaml](https://github.com/eemeli/yaml) from 2.1.1 to 2.1.3.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](https://github.com/eemeli/yaml/compare/v2.1.1...v2.1.3)

---
updated-dependencies:
- dependency-name: yaml
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-02 01:58:03 +00:00
Barry Gordon
0222e03079 Merge pull request #291 from dependabot/dependabot/npm_and_yarn/decode-uri-component-0.2.2 
Bump decode-uri-component from 0.2.0 to 0.2.2
 2022-12-02 01:57:12 +00:00
dependabot[bot]
11d031bf72 Bump decode-uri-component from 0.2.0 to 0.2.2 
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases)
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2)

---
updated-dependencies:
- dependency-name: decode-uri-component
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-02 01:56:19 +00:00
Barry Gordon
f43e701c21 Merge pull request #289 from dependabot/dependabot/npm_and_yarn/types/node-18.11.10 
Bump @types/node from 18.11.9 to 18.11.10
 2022-12-02 01:55:35 +00:00
dependabot[bot]
0d16ca1150 Bump @types/node from 18.11.9 to 18.11.10 
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 18.11.9 to 18.11.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-02 01:54:51 +00:00
Barry Gordon
adee94d76d Merge pull request #286 from dependabot/dependabot/npm_and_yarn/yargs-and-types/yargs-17.6.2 
Bump yargs and @types/yargs
 2022-12-02 01:54:05 +00:00
dependabot[bot]
9d00663c73 Bump yargs and @types/yargs 
Bumps [yargs](https://github.com/yargs/yargs) and [@types/yargs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/yargs). These dependencies needed to be updated together.

Updates `yargs` from 17.6.0 to 17.6.2
- [Release notes](https://github.com/yargs/yargs/releases)
- [Changelog](https://github.com/yargs/yargs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/yargs/yargs/compare/v17.6.0...v17.6.2)

Updates `@types/yargs` from 17.0.13 to 17.0.15
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/yargs)

---
updated-dependencies:
- dependency-name: yargs
  dependency-type: direct:development
  update-type: version-update:semver-patch
- dependency-name: "@types/yargs"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-01 20:05:12 +00:00
Barry Gordon
cce7e2c4f4 Merge pull request #290 from dependabot/dependabot/npm_and_yarn/typescript-eslint/parser-5.45.0 
Bump @typescript-eslint/parser from 5.38.0 to 5.45.0
 2022-12-01 20:03:20 +00:00
dependabot[bot]
8cf0e3d755 Bump @typescript-eslint/parser from 5.38.0 to 5.45.0 
Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 5.38.0 to 5.45.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.45.0/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-01 20:02:28 +00:00
Barry Gordon
77f501d9c7 Merge pull request #287 from dependabot/dependabot/npm_and_yarn/eslint-plugin-promise-6.1.1 
Bump eslint-plugin-promise from 6.0.1 to 6.1.1
 2022-12-01 20:01:06 +00:00
dependabot[bot]
c2126bac03 Bump eslint-plugin-promise from 6.0.1 to 6.1.1 
Bumps [eslint-plugin-promise](https://github.com/eslint-community/eslint-plugin-promise) from 6.0.1 to 6.1.1.
- [Release notes](https://github.com/eslint-community/eslint-plugin-promise/releases)
- [Changelog](https://github.com/eslint-community/eslint-plugin-promise/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint-community/eslint-plugin-promise/compare/v6.0.1...v6.1.1)

---
updated-dependencies:
- dependency-name: eslint-plugin-promise
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-12-01 12:01:15 +00:00
Jeff Widman
ec8c26ab81 Merge pull request #283 from dependabot/clarify-release-notes 
Clarify release notes slightly
 2022-11-03 08:53:12 -07:00
Jeff Widman
bc97c90bca Clarify release notes slightly 
Clarify a few things I had to think through more than I should have during the release process
 2022-11-02 16:09:06 -07:00
Jeff Widman
47f7a65c97 Merge pull request #284 from dependabot/fetch-all-instead-of-pull 
Don't assume `git pull` fetches all branches/tags
 2022-11-02 16:08:00 -07:00
Jeff Widman
0e0e56882f Don't assume git pull fetches all branches/tags 
While running a release, at this point in the instructions I was on the `v1.3.5-release-notes` branch.

So `git pull` isn't guaranteed to pull updates on `main` etc.

Since we're going to checkout the release tag, a `fetch` is all we need here.
 2022-11-02 16:07:07 -07:00
Jeff Widman
7909d57ec2 Merge pull request #281 from dependabot/jeffwidman-patch-1 
Drop mention of "locally"
 2022-11-02 16:05:56 -07:00
Jeff Widman
ffb09c023c Drop mention of "locally" 
I saw "locally" and thought I had to do this on my laptop and couldn't do this in a codespace for some reason... 

But I tested and turns out a codespace is just fine, so remove mention of "locally"
 2022-11-02 16:05:04 -07:00
Jeff Widman
5ef0018793 Merge pull request #282 from dependabot/v1.3.5-release-notes 
v1.3.5 Release Notes
v1.3.5 		2022-11-02 15:58:33 -07:00
Jeff Widman
a9380d24b2 v1.3.5 2022-11-02 22:46:06 +00:00
Jeff Widman
404ba25b3f Merge pull request #280 from dependabot/drop-readme-from-bump-script 
Don't bump pin versions in `README.md`
 2022-11-02 15:42:20 -07:00
Jeff Widman
f40d4c77c9 Don't bump pin versions in README.md 
We'd rather suggest folks pin to the floating tag `v1` so they default to automatically updated.

If they'd rather pin deterministically, they should be pinning by SHA, not the full major/min/patch.

Related:
* https://github.com/dependabot/fetch-metadata/pull/246
* https://github.com/dependabot/fetch-metadata/pull/267#discussion_r983986989
 2022-11-02 14:54:28 -07:00
Jeff Widman
7db64c379f Merge pull request #252 from dependabot/document-release-steps 
Document steps for cutting a new release
 2022-11-02 14:06:07 -07:00
Jeff Widman
daa85e7aee Add mention of npm run build if dev deps need updating. 2022-11-02 13:56:14 -07:00
Jeff Widman
b768c4033e Document steps for cutting a new release 
Document the steps to cut/tag a new release of this action.
 2022-11-02 13:56:14 -07:00
Barry Gordon
9833f74bfb Merge pull request #273 from dependabot/dependabot/npm_and_yarn/yargs-and-types/yargs-17.6.0 
Bump yargs and @types/yargs
 2022-11-01 14:53:05 +00:00
dependabot[bot]
32b7ed324b Bump yargs and @types/yargs 
Bumps [yargs](https://github.com/yargs/yargs) and [@types/yargs](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/yargs). These dependencies needed to be updated together.

Updates `yargs` from 17.5.1 to 17.6.0
- [Release notes](https://github.com/yargs/yargs/releases)
- [Changelog](https://github.com/yargs/yargs/blob/main/CHANGELOG.md)
- [Commits](https://github.com/yargs/yargs/compare/v17.5.1...v17.6.0)

Updates `@types/yargs` from 17.0.12 to 17.0.13
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/yargs)

---
updated-dependencies:
- dependency-name: yargs
  dependency-type: direct:development
  update-type: version-update:semver-minor
- dependency-name: "@types/yargs"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-01 14:52:13 +00:00
Barry Gordon
7942397165 Merge pull request #271 from dependabot/dependabot/npm_and_yarn/actions/github-5.1.1 
Bump @actions/github from 5.0.3 to 5.1.1
 2022-11-01 14:51:25 +00:00
github-actions
e670fb927e [dependabot skip] Update dist/ with build changes 2022-11-01 14:50:26 +00:00
dependabot[bot]
4491142f4c Bump @actions/github from 5.0.3 to 5.1.1 
Bumps [@actions/github](https://github.com/actions/toolkit/tree/HEAD/packages/github) from 5.0.3 to 5.1.1.
- [Release notes](https://github.com/actions/toolkit/releases)
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/github/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/github)

---
updated-dependencies:
- dependency-name: "@actions/github"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-01 14:49:32 +00:00
Barry Gordon
dc39bf9eff Merge pull request #274 from dependabot/dependabot/npm_and_yarn/typescript-eslint/eslint-plugin-5.42.0 
Bump @typescript-eslint/eslint-plugin from 5.38.0 to 5.42.0
 2022-11-01 14:48:46 +00:00
dependabot[bot]
07cf42993d Bump @typescript-eslint/eslint-plugin from 5.38.0 to 5.42.0 
Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 5.38.0 to 5.42.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v5.42.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-11-01 14:47:55 +00:00
Barry Gordon
417b3bd986 Merge pull request #272 from dependabot/dependabot/npm_and_yarn/actions/core-1.10.0 
Bump @actions/core from 1.9.1 to 1.10.0
 2022-11-01 14:46:59 +00:00